CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-1863

Huawei USG6000V with versions V500R001C20SPC300, V500R003C00SPC100, and V500R005C00SPC100 have an out-of-bounds read vulnerability. Due to a logical flaw in a JSON parsing routine, a remote, unauthenticated attacker could exploit this vulnerability to disrupt service in the affected products.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.5%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200311-01-buffer-en
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200311-01-buffer-en

Products affected by CVE-2020-1863

Huawei » Usg6000v » Version: N/A

cpe:2.3:h:huawei:usg6000v:-
Huawei » Usg6000v Firmware » Version: v500r001c20spc300

cpe:2.3:o:huawei:usg6000v_firmware:v500r001c20spc300
Huawei » Usg6000v Firmware » Version: v500r003c00spc100

cpe:2.3:o:huawei:usg6000v_firmware:v500r003c00spc100
Huawei » Usg6000v Firmware » Version: v500r005c00spc100

cpe:2.3:o:huawei:usg6000v_firmware:v500r005c00spc100

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-1863

Products

Pricing

Contact Us